Sr. Network Security Architect - Cyber Defense Professionals

Job Expired

About the job

Do you want to be part of a collaborative Security Architecture team?

Are you a security practitioner who understands Network, Cloud, and Perimeter Security and looking for a challenging role to innovate and define Guardian’s Cloud and Data Center security? Do you enjoy working with your leaders and colleagues in business and security teams to solve complex business challenges? Is a culture where “People Count,” “We Do the Right Thing,” and “We Hold Ourselves to Very High Standards” important to you? If so, Guardian is seeking a Sr. Network Security Architect to define and build responsive network and cloud security strategies that provides the ability to adapt to changing business and organization needs.

You Are

A self-starter who can work independently and can work cross-functionally in a matrixed environment and collaborate closely with other architects, engineers, & developers across the organization to ensure achievement of target business goals and objectives using a broad stack of technologies combining the traditional data center, Amazon cloud, and cloud Software-as-a-Service offerings.

You Will

Provide subject-matter expertise across all network security and encryption topics as it relates to both cloud and on-premises enterprise technology, and the relationship between these two architectural patterns.
Provide architectural and best practices leadership related to the implementation of Cybersecurity controls in Cryptography, Encryption, and Key Management including PKI, Hardware Security Modules, IPSEC and TLS VPNs, Proxies and Firewalls, HIDS/NIDS/IPS, and Wi-Fi security.
Research information on new, emerging technologies and methods in the security space and develop comprehensive security strategies for Encryption at-Rest/in-Transit, Crypto Agility, Zero Trust, and Internet of Things (IoT).
Work with various technology vendors to develop appropriate solutions exploring various deployment options such as cloud computing delivery models (IAAS, PAAS, and SAAS) and deployment models related to Public, Private and Hybrid Cloud service.
Evaluate inherent security characteristics of technologies and architectures used to protect information processing systems that contain sensitive data (e.g., HIPAA, PHI, PII, PFI, PCI), and recommend security controls and plans for remediation when required.
Work closely with business and solution architects to ensure documented prescriptive blueprints and security best practices are followed and enforced during app design and implementation.
Evaluate emerging security tools and technologies that align to the vision and strategic goals and objectives on the Security organization
Provide timely reporting into executive management on team deliverables and other updates
Communicate security risks and solutions to executive management, business partners and IT staff

Primary Location

United States-Pennsylvania-Bethlehem

Other Locations

United States-New Jersey-Holmdel, United States-Connecticut-Stamford

Job

Information Technology

Schedule

Full-time

Shift

Day Job

Job Type

Standard

Travel

Yes, 25 % of the Time

Job Posting

Mar 27, 2022, 4:32:38 PM

You Have

Minimum 10 years of experience in Cyber Security practices, to include a combination of:
Minimum 7 years of security architecture knowledge and experience
Minimum 5 years of experience working with network communication protection technologies such as traditional Network Firewalls, Web Application Firewalls, VPNs, AWS Security Groups.
Experience architecting solutions within Amazon Web Services (AWS), Microsoft Azure and other cloud providers
Working knowledge of common network protocols such as DNS, BGP, HTTP/HTTPs
Working knowledge of API security and modern open security standards for token-based authentication
Good understanding and hand-on experience with Amazon Web Services, Google Compute Cloud and Microsoft Azure.
Working knowledge of Certificate Authorities / PKI, Digital Certificates, and Domain Registration practices
Familiarity with both Windows and Red Hat Linux; IBM AIX is a plus
Intrusion Detection and Incident Response is a plus
Preferred certifications include CISSP, CCNP, CEH, and especially SANS GIAC
In-depth and thorough knowledge of:
Familiarity with security industry standards (NIST 800 series, OWASP, IETF RFCs, etc.) and associated best practices
Privilege Access Management, Identity Governance and Provisioning
Identity and Access Management Systems (MFA, SSO, Reverse Proxies, PAM)
Security networking technologies like TLS, SSH, DNS, Firewalls, WAFs, etc.
Encryption algorithms and protocols
Management of keys and authentication secrets
SIEM (Security Information Event Management) Technologies
Software Development Lifecycle and tools
SAFe Agile framework
Experience with application TCP/IP diagnostics using Wireshark/tcpdump
Excellent written and verbal communications; effective interpersonal skills; strong formal presentation abilities.
Bachelor’s degree in a STEM (Science, Technology, Engineering, Math) discipline preferred; Alternatively, extensive employment experience will be considered

Location:

Bethlehem PA, New York city, Holmdel NJ, or Stamford CT with work from home flexibility
Up to 20% travel within US

Location & Vaccination Requirements

The primary location for this position is Bethlehem, Holmdel or Stamford

Covid – 19 vaccinations required for this position.

Any offer of employment will be contingent upon the candidate’s affirmation of being Full Vaccinated prior to commencing employment in the new role. New hires will have five business days from their start date to provide proof of vaccination through our Vaccination Status Confirmation Form. “Fully Vaccinated” means that at least two weeks have elapsed since you received the recommended number of doses of any COVID-19 vaccine that is currently fully approved, or authorized for emergency use, by the Food and Drug Administration or that have been listed for emergency use by the World Health Organization.

If an applicant is unable to be vaccinated due to a medical condition or a sincerely held religious belief, practice or observance, Guardian may provide reasonable accommodations. This policy may not apply to any Guardian colleagues working in a local jurisdiction (state, county, or city) that implements a law prohibiting a private employer from requiring vaccination, unless there is an applicable vaccine mandate from the federal government that would supersede the vaccination laws of the local jurisdiction. Guardian, in its sole discretion, may modify or terminate this requirement at any time.

Our Promise

At Guardian, you’ll have the support and flexibility to achieve your professional and personal goals.
Through skill-building, leadership development and philanthropic opportunities, we provide opportunities to build communities and grow your career, surrounded by diverse colleagues with high ethical standards

We Offer

Meaningful and challenging work opportunities to accelerate technology and innovation in a secure and compliant way
Competitive compensation
Excellent medical, dental, supplemental health, life and vision coverage for you and your dependents with no wait period
Life and disability insurance
A great 401(k) with match
Tuition assistance, paid parental leave and backup family care
Dynamic, modern work environments that promote collaboration and creativity
Flexible time off, dress code, and work location policies to balance your work and life in the ways that suit you best
Social responsibility in all aspects of our work. We volunteer within our local communities, create educational alliances with colleges, drive a variety of initiatives in sustainability, and advocate for diversity and inclusion in all that we do.

Guardian has been helping people protect their futures and secure their lives for more than 160 years. Every day, we serve approximately 29 million people through a range of insurance and financial products. As one of the largest mutual insurance companies, we know what matters most: putting the needs of our customers first. Because everyone deserves a Guardian. Learn more about Guardian at guardianlife.com

Guardian is an equal opportunity employer. All qualified applicants will be considered for employment without regard to age, race, color, creed, religion, sex, affectional or sexual orientation, national origin, ancestry, marital status, disability, military or veteran status, or any other classification protected by applicable law.